Please tell me how to unprotect? In cas.properties i have to set endpoints.status.discovery.enabled = true ..sensitive = false
Sorry for my questions. Thank you Ray. Sent from my iPhone > On 10 Apr 2019, at 07.05, Ray Bon <[email protected]> wrote: > > Fahmi, > > It looks like /cas/status/discovery is protected by cas and it redirects to > cas/login (status code 302). > Should the discovery page be protected? > > Ray > >> On Tue, 2019-04-09 at 16:43 -0700, Fahmi L. Ramdhani wrote: >> I tried accessing the result curl like this: >> >> curl -v https://cas.example.com:8443/cas/status/discovery >> * Trying 2xx.60.112.9... >> * Connected to cas.example.com (2xx.60.112.9) port 8443 (#0) >> * found 148 certificates in /etc/ssl/certs/ca-certificates.crt >> * found 592 certificates in /etc/ssl/certs >> * ALPN, offering http/1.1 >> * SSL connection using TLS1.2 / ECDHE_RSA_AES_128_GCM_SHA256 >> * server certificate verification OK >> * server certificate status verification SKIPPED >> * common name: cas.example.com (matched) >> * server certificate expiration date OK >> * server certificate activation date OK >> * certificate public key: RSA >> * certificate version: #3 >> * subject: CN=cas.example.com >> * start date: Wed, 03 Apr 2019 09:32:48 GMT >> * expire date: Tue, 02 Jul 2019 09:32:48 GMT >> * issuer: C=US,O=XXXXXXXXXXX,CN=XXXXXXXXXXXXXX >> * compression: NULL >> * ALPN, server did not agree to a protocol >> > GET /cas/status/discovery HTTP/1.1 >> > Host: cas.example.com:8443 >> > User-Agent: curl/7.47.0 >> > Accept: */* >> > >> < HTTP/1.1 302 >> < Cache-Control: no-cache, no-store, max-age=0, must-revalidate >> < Pragma: no-cache >> < Expires: 0 >> < Strict-Transport-Security: max-age=15768000 ; includeSubDomains >> < X-Content-Type-Options: nosniff >> < X-Frame-Options: DENY >> < X-XSS-Protection: 1; mode=block >> < Set-Cookie: JSESSIONID=AECBB7BF899FAFB0B707CE228ECC19EC; Path=/cas; >> Secure; HttpOnly >> < Location: >> https://cas.example.com:8443/cas/login?service=https%3A%2F%2Fcas.example.com%3A8443%2Fcas%2Fstatus%2Fdiscovery >> < Transfer-Encoding: chunked >> < Date: Tue, 09 Apr 2019 23:34:01 GMT >> < >> * Connection #0 to host cas.example.com left intact >> >> Can anyone help please? > -- > - Website: https://apereo.github.io/cas > - Gitter Chatroom: https://gitter.im/apereo/cas > - List Guidelines: https://goo.gl/1VRrw7 > - Contributions: https://goo.gl/mh7qDG > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/a/apereo.org/d/msgid/cas-user/6865637d5002e54d38c2e2e619ff06ec63e45f0a.camel%40uvic.ca. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/C1E5AECD-202E-4422-9637-76BC09FBC661%40gmail.com.
